The plugin increases security of a site in case it has no SSL certificate,\nuseful for owners of small sites who want to secure their passwords and\nother posted data but don't want to buy SSL certificate for each domain\nand subdomain: it protects from sniffering the most important data such as\npasswords when they are being sent from forms of your site to the server.<\/p>\n\n
When the form served by the plugin is submitted all input data are being\njoined into a string, then this string is being encrypted with AES algorythm\nby disposable key and only encrypred string will be sent.<\/p>\n\n
A browser encrypts the disposable key in javascript by the RSA public key\nand sends it to the server; then the server decrypts it with the RSA private\nkey and then use it to decrypt the posted data with AES.<\/p>\n\n
Translations included: Ukrainian, Russian, German and Brazilian Portuguese.<\/p>\n\n
I just adapted usage in WordPress the jCryption jQuery plugin, v. 3.1.0.\nPlease check www.jcryption.org to learn how jCryption works.<\/p>\n\n\n
Upload wp-jcryption.zip using the wordpress plugin installation interface\nand activate the plugin. On the very first activation 1024-bit RSA key pair\nwill be generated and the list of forms the plugin is primarily destinated\nfor will be saved. You may add other form IDs to this list on the plugin\nsettings page: Settings - WP jCryption.<\/p>\n\n\n
Upload wp-jcryption.zip using the wordpress plugin installation interface\nand activate the plugin. On the very first activation 1024-bit RSA key pair\nwill be generated and the list of forms the plugin is primarily destinated\nfor will be saved. You may add other form IDs to this list on the plugin\nsettings page: Settings - WP jCryption.<\/p><\/dd>\n
If you don't use https on your site your password could be stolen through\nman-in-the-middle attack when you are submitting log-in form because form data\n(including password) are being sent as plain text. This plugin encrypts submitted\ndata in a way similar to https transmission.<\/p><\/dd>\n
No. The plugin encrypts only data being posted from most important forms\n(that contain password fields: login, reset password, user profile)\nand forms you specify additionally. To secure all incoming and\noutgoing traffic of your site a SSL certificate is needed.<\/p><\/dd>\n
No.<\/p><\/dd>\n
Yes, you can do it by means of Firefox LiveHTTPHeaders extension, Fiddler or similar tools.<\/p><\/dd>\n
PHP version >= 5.3 with OpenSSL PHP extension.<\/p><\/dd>\n
No. PHP generates keys for you and save them in a database. So, this plugin is usable on (almost) any shared hosting.<\/p><\/dd>\n
Try to enable the plugin option: Fix button id=\"submit\" and name=\"submit\".<\/p><\/dd>\n\n<\/dl>\n\n\n